$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cd818d78-5bf5-4ab2-a248-de1006ba6b9d.roa File: cd818d78-5bf5-4ab2-a248-de1006ba6b9d.roa (raw, json) Hash identifier: l5VSQeCdyAY66PHOsNm16/3FbjywbuccxSBbHX4Ovz4= Subject key identifier: 6F:76:B8:28:38:C9:0C:69:94:00:0F:78:69:EC:3D:8F:68:1D:B7:D4 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2F59F0D55BC63F6728D23B8F4815A1DB7ACEE25D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cd818d78-5bf5-4ab2-a248-de1006ba6b9d.roa Signing time: Tue 16 Apr 2024 00:00:00 +0000 ROA not before: Tue 16 Apr 2024 00:00:00 +0000 ROA not after: Tue 21 May 2024 23:59:59 +0000 asID: 14618 IP address blocks: 16.156.0.0/14 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:59:f0:d5:5b:c6:3f:67:28:d2:3b:8f:48:15:a1:db:7a:ce:e2:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 16 00:00:00 2024 GMT Not After : May 21 23:59:59 2024 GMT Subject: serialNumber=380009488e48a366ddeb94c6cd256826eb0f7360ca6673b5ea51975ca15dd817, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:98:e6:75:c2:9b:28:84:d7:74:e4:f3:97:10: 73:bf:d0:73:46:f0:b4:57:d0:ab:44:11:1d:95:48: 2c:2f:e9:b2:5e:9f:8c:5c:9e:36:72:0d:fb:1f:0c: d4:e9:35:bb:89:3d:7f:1a:18:33:83:08:85:ca:0c: ac:2b:5b:0b:91:95:35:16:70:36:78:d8:1f:6e:36: 77:56:bd:4e:67:5a:d2:5b:d2:1b:e5:59:86:fe:49: f8:a7:79:98:b1:1a:65:03:f2:76:c5:da:02:62:25: c9:c5:b2:77:0d:9d:a6:44:b2:a3:08:11:bb:b5:4d: c2:48:fa:c8:c3:77:fe:f3:f5:e3:19:78:96:dc:94: a4:26:d5:a2:f7:8a:f1:55:f2:b5:9c:d6:51:31:50: 52:7f:ce:eb:cb:66:7b:13:6f:a1:8e:76:97:5f:a6: 64:62:33:57:b2:89:f6:48:f7:80:25:9f:ac:be:e5: fa:75:35:d5:ac:cd:c1:5b:07:e1:05:0f:dc:f5:d4: bd:fd:e5:73:06:17:40:dc:8a:88:2e:b6:18:f8:ed: 4d:7c:20:1e:78:15:e9:60:3e:5c:de:6f:40:65:16: ff:1e:33:49:0b:6e:5a:27:30:18:bd:35:e8:f6:02: f2:6a:b1:76:15:50:7c:0c:a6:fc:74:e2:37:7b:2f: 47:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:76:B8:28:38:C9:0C:69:94:00:0F:78:69:EC:3D:8F:68:1D:B7:D4 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cd818d78-5bf5-4ab2-a248-de1006ba6b9d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.156.0.0/14 Signature Algorithm: sha256WithRSAEncryption 26:f7:78:48:91:2c:20:3a:27:54:14:5b:41:72:40:06:df:15: 9d:9c:5a:38:bb:5a:52:18:23:05:67:ea:bc:3d:61:a7:a5:7f: 24:fa:33:fe:84:b4:56:40:55:80:be:7c:63:93:c2:d7:73:bf: 29:2c:a7:42:42:0b:72:32:78:6c:a8:8e:7f:3b:dd:fe:5d:17: 3f:30:2e:ae:34:10:b4:31:5e:38:16:65:26:d0:25:e5:bc:a5: 1f:aa:44:0d:2d:70:13:e5:9f:56:90:0e:5b:c8:4e:5c:fc:cb: 39:88:6b:0f:e8:e8:6e:84:c5:d0:a4:22:00:b2:9a:05:b1:0f: 80:63:27:ce:af:9d:58:59:7c:df:11:f1:8d:b9:ff:13:fb:ea: 4e:8e:bf:29:49:f6:b4:c8:4f:36:de:b1:f4:88:16:78:5e:57: c5:82:9e:ff:a0:4d:3f:89:08:05:6c:65:c6:55:a1:ba:da:c0: a2:97:2b:f4:38:7f:a7:41:53:e2:79:41:7c:fa:6c:20:87:f0: 34:37:39:2a:7b:e9:89:46:da:41:e1:fb:e2:8a:19:e0:2e:73: 0a:2b:0f:b6:77:95:a8:e0:9e:a2:ac:35:4e:03:aa:99:10:63: 32:62:1c:6d:74:72:4c:f6:ca:71:4c:e8:1d:c6:8f:99:52:df: 76:18:23:43 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUL1nw1VvGP2co0juPSBWh23rO4l0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE2MDAwMDAwWhcNMjQwNTIxMjM1OTU5 WjB6MUkwRwYDVQQFE0AzODAwMDk0ODhlNDhhMzY2ZGRlYjk0YzZjZDI1NjgyNmVi MGY3MzYwY2E2NjczYjVlYTUxOTc1Y2ExNWRkODE3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDZmOZ1wpsohNd05POXEHO/0HNG8LRX0KtEER2VSCwv6bJe n4xcnjZyDfsfDNTpNbuJPX8aGDODCIXKDKwrWwuRlTUWcDZ42B9uNndWvU5nWtJb 0hvlWYb+SfineZixGmUD8nbF2gJiJcnFsncNnaZEsqMIEbu1TcJI+sjDd/7z9eMZ eJbclKQm1aL3ivFV8rWc1lExUFJ/zuvLZnsTb6GOdpdfpmRiM1eyifZI94Aln6y+ 5fp1NdWszcFbB+EFD9z11L395XMGF0Dcioguthj47U18IB54FelgPlzeb0BlFv8e M0kLblonMBi9Nej2AvJqsXYVUHwMpvx04jd7L0dPAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUb3a4KDjJDGmUAA94aew9j2gdt9QwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2NkODE4ZDc4LTViZjUtNGFiMi1hMjQ4LWRlMTAwNmJhNmI5ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwIQnDANBgkqhkiG9w0BAQsFAAOCAQEAJvd4SJEsIDonVBRbQXJABt8VnZxa OLtaUhgjBWfqvD1hp6V/JPoz/oS0VkBVgL58Y5PC13O/KSynQkILcjJ4bKiOfzvd /l0XPzAurjQQtDFeOBZlJtAl5bylH6pEDS1wE+WfVpAOW8hOXPzLOYhrD+joboTF 0KQiALKaBbEPgGMnzq+dWFl83xHxjbn/E/vqTo6/KUn2tMhPNt6x9IgWeF5XxYKe /6BNP4kIBWxlxlWhutrAopcr9Dh/p0FT4nlBfPpsIIfwNDc5KnvpiUbaQeH74ooZ 4C5zCisPtneVqOCeoqw1TgOqmRBjMmIcbXRyTPbKcUzoHcaPmVLfdhgjQw== -----END CERTIFICATE-----Generated at Thu May 2 04:02:42 2024 by rpki-client on console-fra.rpki-client.org